Bug 1917966

Summary: upgrade version of dnsmasq package
Product: OpenShift Container Platform Reporter: Riccardo Pittau <rpittau>
Component: Bare Metal Hardware ProvisioningAssignee: Riccardo Pittau <rpittau>
Bare Metal Hardware Provisioning sub component: ironic QA Contact: Victor Voronkov <vvoronko>
Status: CLOSED ERRATA Docs Contact:
Severity: urgent    
Priority: urgent CC: vvoronko
Version: 4.5Keywords: Triaged, UpcomingSprint
Target Milestone: ---   
Target Release: 4.5.z   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-02-02 15:10:11 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1917937    
Bug Blocks:    

Description Riccardo Pittau 2021-01-19 18:24:48 UTC 
we need to set a minimum version of dnsmasq package with the fix for the security vulnerability described in https://access.redhat.com/security/vulnerabilities/RHSB-2021-001
Comment 3 Victor Voronkov 2021-01-29 10:27:23 UTC 
Verified on 4.5.29
[kni@provisionhost-0-0 ~]$ oc get clusterversion
NAME      VERSION   AVAILABLE   PROGRESSING   SINCE   STATUS
version   4.5.29    True        False         40m     Cluster version is 4.5.29

[core@master-0-0 ~]$ rpm -qa dnsmasq
dnsmasq-2.79-11.el8_2.2.x86_64
Comment 5 errata-xmlrpc 2021-02-02 15:10:11 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (OpenShift Container Platform 4.5.30 bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2021:0231